Open Stack

On Sep 29, 2016, at 11:07 AM, Imran Khakoo wrote:

> ubuntu at throwaway:~$ ping 8.8.8.8
> PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
> From 10.10.0.1 icmp_seq=17 Destination Net Unreachable
> From 10.10.0.1 icmp_seq=18 Destination Net Unreachable

As far as I can tell, your security groups is just fine now.

But can you just do a "traceroute -n 8.8.8.8" as well?

Looking at your screenshot of your setup (first mail), it
looks to me that the router have both an internal (the one
connected to "the cloud" - "imran_khakoo_net" I'm guessing)
and an external (the one connected to "the globe" - "ext_net"
if I'm to guess) interface.

Our assumption have been that the router isn't routing (which
is why I suggested twiddling with the SGs). If this still
holds true, then the traceroute I've asked you to run above
should reach the router (it's not absolutly clear, but I'm
guessing "10.10.0.1" if the 'ip route' command is correct -
please triple check by going into the router config and look
that it have a "Internal Interface" with that IP) but NOT go
anywhere beyond that.


Looking at your first mail again, I just noticed that the
supposedly external network (the "ext_" part of the network
name - if this is NOT the external, then you should rename
it :) is NOT set as 'External' (the 'External=No' entry).

In the router, do you have an interface with the label 
"External Gateway"? You shouldn't have, if I'm correct..

This is somewhat a misnomer - it is NOT the IP of the gateway,
it is the routers gateway IP.. Hmm, that doesn't make sense..

If your actual, real gateway (the one with 'Net access) is,
for example, "192.168.1.1/24", then that "External Gateway" in
the OS router needs to be something like "192.168.1.253/24"
(an unused IP on the same network as the real GW/FW/NAT/Whatever).